Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/5_0v8kwFijuBUzsTYV1GPl8Tpmg.roa
File: 5_0v8kwFijuBUzsTYV1GPl8Tpmg.roa (raw, json)
Hash identifier: BLjcFdt/g9XdSFAJRTl56m0rCulTiH/oBDONBjHnabY=
Subject key identifier: E7:FD:2F:F2:4C:05:8A:3B:81:53:3B:13:61:5D:46:3E:5F:13:A6:68
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185F81E866B41C31919D4E32F08FD3E20E0
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/5_0v8kwFijuBUzsTYV1GPl8Tpmg.roa
Signing time: Sat 28 Jan 2023 11:23:48 +0000
ROA not before: Sat 28 Jan 2023 11:23:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209641
IP address blocks: 185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.248.0/22 maxlen: 22
185.5.250.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.50.0/24 maxlen: 24
185.87.48.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
139.28.220.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
195.66.87.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
185.105.119.0/24 maxlen: 24
94.142.139.0/24 maxlen: 24
94.142.143.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
185.125.218.0/23 maxlen: 23
185.125.216.0/22 maxlen: 22
185.105.118.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.58.205.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.207.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.228.0/22 maxlen: 22
185.125.230.0/24 maxlen: 24
185.125.228.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.196.0/22 maxlen: 22
194.67.194.0/23 maxlen: 23
194.67.193.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
193.124.176.0/21 maxlen: 21
193.124.184.0/21 maxlen: 21
45.128.176.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.177.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
195.47.250.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.200.0/23 maxlen: 23
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9300:d0::/48 maxlen: 48
2a0a:9302:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Mar 2023 13:47:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f8:1e:86:6b:41:c3:19:19:d4:e3:2f:08:fd:3e:20:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 28 11:23:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7fd2ff24c058a3b81533b13615d463e5f13a668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:95:e9:4d:9c:c8:f4:82:5f:67:28:5d:3c:b6:
75:4b:cb:81:a3:9a:6f:dd:65:ca:49:5f:cb:0d:31:
40:ec:b0:82:19:a4:06:d5:03:f1:b1:68:51:9e:de:
5f:99:41:bd:b6:d0:e9:ba:08:d2:ec:b4:fa:94:43:
50:6a:d9:11:78:2f:d5:32:21:dc:5c:9e:4d:e8:31:
0e:1a:50:34:c2:8d:bb:b2:5e:a4:c8:32:91:98:07:
f4:49:13:00:28:a8:90:64:1b:61:91:48:3c:43:fc:
a8:b4:90:8a:19:54:ef:af:83:dc:49:d6:4d:dc:45:
66:07:ac:22:b4:1d:d4:08:d8:fd:3c:40:c9:f3:aa:
59:47:50:a2:f1:49:62:0e:7b:3b:46:ea:83:a8:a4:
69:69:fb:f1:8a:e2:9a:f8:83:fe:74:38:a8:03:c0:
20:3b:f3:41:84:73:39:0f:72:3b:49:14:fb:52:89:
81:3d:95:0d:30:3f:60:bf:3f:08:f2:3d:29:a4:d7:
37:cd:3f:23:77:31:8f:5e:59:41:bb:2e:b1:e2:44:
e0:21:ea:a5:1a:cf:5b:09:41:fa:e7:ed:74:17:94:
76:16:e1:9a:c5:1f:17:52:f5:e3:5d:db:31:4f:dc:
98:a0:88:9e:61:70:07:37:20:0b:43:06:59:1e:12:
cb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FD:2F:F2:4C:05:8A:3B:81:53:3B:13:61:5D:46:3E:5F:13:A6:68
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/5_0v8kwFijuBUzsTYV1GPl8Tpmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/23
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
95.214.9.0-95.214.11.255
139.28.220.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/22
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
193.124.176.0/20
194.67.192.0/19
195.47.250.0/24
195.66.87.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
b9:3a:0e:62:db:c4:ad:1d:09:42:0e:49:6b:88:61:1c:79:5b:
e5:8b:4f:f6:51:c4:5c:27:f0:9e:0a:15:82:cd:cb:81:2b:67:
e7:6e:55:3f:3e:f4:ff:8e:24:71:96:ad:3d:8f:e3:bd:99:09:
ab:8e:e5:fd:e8:54:78:41:e0:62:1e:a7:29:3f:54:79:51:6e:
ba:f1:e3:e0:7a:52:eb:b3:a6:af:36:3c:9b:fc:31:d4:9c:fb:
d1:62:42:66:27:b3:8c:23:19:55:f8:61:75:e5:e8:66:20:60:
05:7e:52:bb:22:32:f0:b5:72:22:e7:8c:15:b4:12:33:30:cb:
a2:6e:87:e9:80:7b:4d:ad:9c:d5:7d:89:8e:be:eb:0d:ee:f9:
7d:54:fb:0f:73:bd:6d:10:db:6b:a7:b3:00:ab:4d:27:94:30:
d5:b1:b9:c6:9c:51:07:92:0a:bf:27:00:a4:a0:56:38:85:9d:
76:16:97:2f:51:6a:bc:5c:97:1b:d0:6a:5e:75:84:41:1c:78:
54:53:00:74:e7:c7:07:5f:57:44:68:7d:15:1d:59:f5:94:b8:
9c:2d:02:82:f5:70:46:5b:34:a5:19:80:ea:74:4c:29:3e:02:
68:04:9d:4e:4c:14:a2:85:67:aa:5e:a1:c8:2b:42:09:06:30:
82:96:f0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org